刚刚破解一个黑客字典 顺便发上注册机 共大家学习 往后还有更多作品陆续发布
我09年就注册这个账号了 至今一直是临时会员哎 以前忙 没时间上 现在有时间了 多和大家交流经验 也希望管理员能给我一个激活码 期待 ,,,,,邮箱1755130007@qq.com
下面是跳转代码 改跳转直接虑过注册码限制
00401D00 /0F84 DF000000 je UltraDic.00401DE5 这里是关键跳 我把JNE改为JE就虑过注册码了 呵呵 这个是OD载入
00401D06 |68 01100000 push 1001
00401D0B |68 F4704300 push UltraDic.004370F4 ; c:\regbanyet.dat
00401D10 |8D4C24 18 lea ecx,dword ptr ss:[esp+18]
00401D14 |E8 8FEF0100 call UltraDic.00420CA8
00401D19 |8D7C24 20 lea edi,dword ptr ss:[esp+20]
00401D1D |83C9 FF or ecx,FFFFFFFF
00401D20 |33C0 xor eax,eax
00401D22 |B2 0D mov dl,0D
00401D24 |F2:AE repne scas byte ptr es:[edi]
00401D26 |F7D1 not ecx
00401D28 |49 dec ecx
00401D29 |8DBC24 84000000 lea edi,dword ptr ss:[esp+84]
00401D30 |C68424 B4010000>mov byte ptr ss:[esp+1B4],1
00401D38 |88540C 20 mov byte ptr ss:[esp+ecx+20],dl
00401D3C |41 inc ecx
00401D3D |C6440C 20 0A mov byte ptr ss:[esp+ecx+20],0A
00401D42 |885C0C 21 mov byte ptr ss:[esp+ecx+21],bl
00401D46 |83C9 FF or ecx,FFFFFFFF
00401D49 |F2:AE repne scas byte ptr es:[edi]
00401D4B |F7D1 not ecx
00401D4D |49 dec ecx
00401D4E |8D7C24 20 lea edi,dword ptr ss:[esp+20]
00401D52 |88940C 84000000 mov byte ptr ss:[esp+ecx+84],dl
00401D59 |41 inc ecx
00401D5A |C6840C 84000000>mov byte ptr ss:[esp+ecx+84],0A
00401D62 |889C0C 85000000 mov byte ptr ss:[esp+ecx+85],bl
00401D69 |83C9 FF or ecx,FFFFFFFF
00401D6C |F2:AE repne scas byte ptr es:[edi]
00401D6E |F7D1 not ecx
00401D70 |49 dec ecx
00401D71 |8D4424 20 lea eax,dword ptr ss:[esp+20]
00401D75 |51 push ecx
00401D76 |50 push eax
00401D77 |8D4C24 18 lea ecx,dword ptr ss:[esp+18]
00401D7B |E8 DCF10100 call UltraDic.00420F5C
00401D80 |8DBC24 84000000 lea edi,dword ptr ss:[esp+84]
00401D87 |83C9 FF or ecx,FFFFFFFF
00401D8A |33C0 xor eax,eax
00401D8C |F2:AE repne scas byte ptr es:[edi]
00401D8E |F7D1 not ecx
00401D90 |49 dec ecx
00401D91 |51 push ecx
00401D92 |8D8C24 88000000 lea ecx,dword ptr ss:[esp+88]
00401D99 |51 push ecx
00401D9A |8D4C24 18 lea ecx,dword ptr ss:[esp+18]
00401D9E |E8 B9F10100 call UltraDic.00420F5C
00401DA3 |6A 03 push 3
00401DA5 |68 F4704300 push UltraDic.004370F4 ; c:\regbanyet.dat
00401DAA |FF15 8CB24200 call dword ptr ds:[<&KERNEL32.SetFileAtt>; kernel32.SetFileAttributesA
00401DB0 |68 D8704300 push UltraDic.004370D8 ; 非常感谢您的支持,注册成功!
00401DB5 |8D8C24 EC000000 lea ecx,dword ptr ss:[esp+EC]
00401DBC |E8 AF010000 call UltraDic.00401F70
00401DC1 |8D4C24 10 lea ecx,dword ptr ss:[esp+10]
00401DC5 |889C24 B4010000 mov byte ptr ss:[esp+1B4],bl
00401DCC |E8 77EF0100 call UltraDic.00420D48
00401DD1 |8BCD mov ecx,ebp
00401DD3 |E8 44B50100 call UltraDic.0041D31C
00401DD8 |C78424 B4010000>mov dword ptr ss:[esp+1B4],3
00401DE3 |EB 1C jmp short UltraDic.00401E01
00401DE5 \68 C0704300 push UltraDic.004370C0 ; 注册名或注册码不正确!
[课程]Android-CTF解题方法汇总!